Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/s1cmnPGiPmDPKZ-_CWF6gvJSnug.roa
File: s1cmnPGiPmDPKZ-_CWF6gvJSnug.roa (raw, json)
Hash identifier: axn7dJsYCeztn+t0mc+T7rQqirRxybn94dHJ5PX5GRk=
Subject key identifier: B3:57:26:9C:F1:A2:3E:60:CF:29:9F:BF:09:61:7A:82:F2:52:9E:E8
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 01856BDC99447C9328BE52E0EC211DC80732
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/s1cmnPGiPmDPKZ-_CWF6gvJSnug.roa
Signing time: Sun 01 Jan 2023 05:44:57 +0000
ROA not before: Sun 01 Jan 2023 05:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210708
IP address blocks: 79.110.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 18:56:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:99:44:7c:93:28:be:52:e0:ec:21:1d:c8:07:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Jan 1 05:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b357269cf1a23e60cf299fbf09617a82f2529ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:70:a9:5d:ae:ba:c3:cd:23:f6:fc:41:54:69:
00:78:96:14:c1:d8:e8:36:27:d5:a3:dd:4c:cf:f3:
61:f3:f4:06:b2:35:34:d8:c8:48:ab:35:f0:63:e3:
8e:de:14:9a:4b:9b:5b:11:e8:71:e0:41:6e:d8:15:
a0:11:0d:61:0a:dc:bc:0f:a5:81:f2:d4:f8:26:e8:
3f:08:7c:24:01:89:8e:1d:e6:3d:45:cd:96:10:71:
ba:da:28:47:a4:73:04:68:69:d7:67:91:ed:62:30:
88:77:a5:db:3a:11:8e:b1:36:ad:d8:89:9d:e4:a8:
36:09:1d:c8:31:b3:d4:76:81:21:63:6c:c9:2c:f2:
81:b6:d2:a6:74:6c:65:be:58:1f:4b:38:c5:92:32:
50:e0:e3:16:16:48:eb:2c:42:54:41:96:71:fa:75:
30:68:3d:ac:fe:5f:15:af:51:50:d9:64:09:e4:d9:
f7:64:3c:12:ea:66:dd:95:c7:4e:5f:da:87:65:00:
9c:c1:c5:91:91:3f:d7:42:83:5a:1b:94:3c:00:06:
67:df:27:9f:7b:a9:da:36:15:49:de:bb:ce:d4:48:
cb:8c:44:45:3f:73:b1:6d:d9:02:ab:d0:3a:32:25:
86:c1:79:d4:e4:34:14:1d:2a:bf:8e:64:24:5a:9e:
d1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:57:26:9C:F1:A2:3E:60:CF:29:9F:BF:09:61:7A:82:F2:52:9E:E8
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/s1cmnPGiPmDPKZ-_CWF6gvJSnug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.233.0/24
Signature Algorithm: sha256WithRSAEncryption
86:03:9b:6e:e5:c6:61:8b:d7:75:e0:37:19:ce:b2:e0:ae:2a:
a9:38:f8:9d:73:04:d1:93:24:5f:66:39:97:f1:91:2d:4d:49:
9f:60:e7:3f:fc:cc:63:be:95:57:6d:b7:6c:46:dd:8b:dc:21:
a5:44:e8:5a:fa:af:f2:65:50:3e:8f:c5:5d:63:00:c7:1f:94:
13:a8:bd:9f:c2:0d:fa:bc:9f:2a:45:7d:5f:52:0a:03:0b:fd:
5d:99:74:6f:36:8c:f6:19:b5:9b:8b:cc:46:3a:04:46:96:66:
76:5f:6d:39:0d:06:40:4f:9e:f1:43:ad:99:26:8c:72:23:9b:
fe:ed:1c:0e:29:0e:a9:25:fb:41:0f:6f:50:bf:af:c5:2d:66:
23:bc:a9:8e:6a:67:02:49:c9:83:3d:0c:e4:5f:3f:70:5c:4d:
ff:2c:5c:4a:62:48:5b:1a:83:4e:c7:53:8e:d8:5d:f9:bc:00:
5c:c2:ad:28:94:20:a2:f3:e6:c3:a6:cd:32:3e:8a:dc:b5:b9:
cf:d5:2b:30:47:48:93:67:62:cc:38:f9:1e:10:df:07:3f:7a:
30:ad:37:91:f6:f9:60:05:46:cf:8b:b3:05:38:d8:99:f0:e1:
d0:a9:b0:e3:b9:c7:b4:a8:44:fa:17:ff:dc:c8:03:ba:49:f4:
78:c1:f6:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3JlEfJMovlLg7CEdyAcyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiNjc4ZjE0ZjhiMjI4OGQ0OTU1N2NhNmZiMWJkZjQ3OTM5
MjdkY2UwHhcNMjMwMTAxMDU0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzU3MjY5Y2YxYTIzZTYwY2YyOTlmYmYwOTYxN2E4MmYyNTI5ZWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXCpXa66w80j9vxBVGkAeJYUwdjo
NifVo91Mz/Nh8/QGsjU02MhIqzXwY+OO3hSaS5tbEehx4EFu2BWgEQ1hCty8D6WB
8tT4Jug/CHwkAYmOHeY9Rc2WEHG62ihHpHMEaGnXZ5HtYjCId6XbOhGOsTat2Imd
5Kg2CR3IMbPUdoEhY2zJLPKBttKmdGxlvlgfSzjFkjJQ4OMWFkjrLEJUQZZx+nUw
aD2s/l8Vr1FQ2WQJ5Nn3ZDwS6mbdlcdOX9qHZQCcwcWRkT/XQoNaG5Q8AAZn3yef
e6naNhVJ3rvO1EjLjERFP3OxbdkCq9A6MiWGwXnU5DQUHSq/jmQkWp7RJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLNXJpzxoj5gzymfvwlheoLyUp7oMB8GA1UdIwQY
MBaAFCtnjxT4siiNSVV8pvsb30eTkn3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEt
ZjFjYzg3M2MyZTI3LzEvczFjbW5QR2lQbURQS1otX0NXRjZndkpTbnVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEtZjFjYzg3M2MyZTI3
LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT27pMA0G
CSqGSIb3DQEBCwUAA4IBAQCGA5tu5cZhi9d14DcZzrLgriqpOPidcwTRkyRfZjmX
8ZEtTUmfYOc//MxjvpVXbbdsRt2L3CGlROha+q/yZVA+j8VdYwDHH5QTqL2fwg36
vJ8qRX1fUgoDC/1dmXRvNoz2GbWbi8xGOgRGlmZ2X205DQZAT57xQ62ZJoxyI5v+
7RwOKQ6pJftBD29Qv6/FLWYjvKmOamcCScmDPQzkXz9wXE3/LFxKYkhbGoNOx1OO
2F35vABcwq0olCCi8+bDps0yPorctbnP1SswR0iTZ2LMOPkeEN8HP3owrTeR9vlg
BUbPi7MFONiZ8OHQqbDjuce0qET6F//cyAO6SfR4wfbc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:28 2024 by rpki-client on console-fra.rpki-client.org